PARTICULAR PLAINTEXT DETECTOR 



BACKGROUND OF THE INVENTION 
Field of the Invention 

The present invention relates to a particular plaintext 
detector . 

Description of the Related Art 

Currently, in order to avoid information leakage or 
manipulation in transmitting or storing information, 
information is received as plaintext to utilize an encryption 
algorithm for encrypting plaintext with a key, and the obtained 
ciphertext is transmitted or stored. In order to enhance the 
difficulty in decrypting such ciphertext, it is considered to 
be important that excellent encryption algorithms are used and 
that a user keeps a key secret, but plaintext subject to 
encryption is not traditionally considered to greatly affect 
the difficulty of decryption. In reality, attention is not 
given to it particularly. Moreover, it is troublesome to 
change to new encryption algorithms. 

However, the inventor determines that ciphertext can be 
decrypted easily based on selected plaintext that is the 
plaintext satisfying certain conditions, depending on 
encryption algorithms . 

Then, the difficulty of decryption can be enhanced 



1 



without changing encryption algorithms by detecting the event 
that characteristic plaintext allowed for use in decryption 
has been inputted before encryption and taking proper schemes. 

SUMMARY OF THE INVENTION 

More specifically, a bit string of plaintext is separated 
into a fixed part and a variable part, a set of plaintext formed 
of the combination of any given value of the fixed part and 
the entire value of the variable part is used to facilitate 
decryption. Here, when the fixed part or the variable part 
is separated into multiple parts, each of them is considered 
to be formed of virtually continuing bits, thus forming the 
value of the fixed parts and the value of the variable parts. 

Therefore, the number of inputted plaintext having the 
value of the fixed part is counted to detect that the value 
of separate counts becomes the maximum value + 1 of the value 
of the variable parts, for example, which tells that decryption 
becomes easy to take an action such as updating keys. 

In addition, it is acceptable to count a set of the values 
of the fixed parts that the values of a plurality of the fixed 
parts are combined into one for convenience in reducing the 
memory required for counting. 

Accordingly, a particular plaintext detector for 
detecting whether plaintext to be inputted into a 
predetermined encryption algorithm satisfies a predetermined 
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condition, the particular plaintext detector is characterized 
by including: 

a receiving part for receiving the plaintext; 

a counter part for separating a predetermined part from 
a bit string forming the plaintext into a fixed part and a 
remaining part into a variable part, counting the inputted 
plaintext having a value of the fixed part included in a set 
of values of the fixed parts at every set of the values of the 
fixed parts formed of 1 or a plurality of the values of the 
fixed parts, and storing it as a separate count; and 

a detecting part for outputting a detection signal when 
at least one of the separate counts exceeds a predetermined 
number. The particular plaintext detector can enhance the 
difficulty in decrypting ciphertext. 

Moreover, this particular plaintext detector is 
suitable for detecting selected plaintext for use in 
decrypting ciphertext outputted from a block encryption 
algorithm that separates plaintext into blocks to execute 
encryption at every block. 

More specifically, a particular plaintext detector is 
configured to separate 17th to 32nd bits of plaintext from the 
plaintext into a fixed part and first to 16th bits and 33rd 
to 64th bits thereof into a variable part and to detect that 
at least one of separate counts, becomes 2^^ - 1, for example, 
for changing keys, which allows the increased difficulty of 
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decryption on KASUMI, one of block encryption algorithms. 

More specifically, a filter apparatus for limiting 
output of ciphertext from an encryption algorithm that 
receives plaintext to output ciphertext, the filter apparatus 
includes : 

a receiving part for receiving the plaintext; 

a counter part for separating a predetermined part from 
a bit string forming the plaintext into a fixed part and a 
remaining part into a variable part, counting the inputted 
plaintext having a value of the fixed part included in a set 
of values of the fixed parts at every set of the values of the 
fixed parts formed of 1 or a plurality of the values of the 
fixed parts, and storing it as a separate count; 

a detecting part for outputting a detection signal when 
at least one of the separate counts exceeds a predetermined 
number; and 

a filter apparatus main body for outputting the plaintext 
when a detection signal is not outputted from the detecting 
part, and for holding output of the plaintext until it receives 
a process restart signal for instructing restart of outputting 
the plaintext when the detection signal is outputted. For 
example, by routing data outputted from an information 
processor, which is disposed in a computer network and stores 
important information, through the filter apparatus, the 
filter apparatus can detect an attempt that the information 
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processor is being decrypted, thus raising an alert to an 
operator to take a proper action or taking an action such as 
automatic discard of held plaintext. Therefore, the 
difficulty of decryption can be enhanced. 

Furthermore, conditions for the plaintext to be detected 
depend on encryption algorithms . An encryption apparatus with 
a particular plaintext detector, the encryption apparatus for 
executing an encryption algorithm that receives plaintext to 
output ciphertext in which the encryption algorithm is 
changeable, and an encryption apparatus for executing an 
encryption algorithm that receives plaintext to output 
ciphertext in which the encryption algorithm is changeable, 
the encryption apparatus includes: 

a receiving part for receiving the plaintext; 

a counter part for separating a predetermined part from 
a bit string forming the plaintext into a fixed part and a 
remaining part into a variable part, counting the inputted 
plaintext having a value of the fixed part included in a set 
of values of the fixed parts at every set of the values of the 
fixed parts formed of 1 or a plurality of the values of the 
fixed parts, and storing it as a separate count; 

a detecting part for outputting a detection signal when 
at least one of the separate counts exceeds a predetermined 
number; 

an encryption apparatus main body for executing the 
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encryption algorithm for encryption when a detection signal 
is not outputted from the detecting part, and for holding output 
of the plaintext when the detection signal is outputted; 

an indication signal receiving part for receiving an 
indication signal for indicating an encryption algorithm for 
new use; and 

a setting part for outputting cipher setting information 
required for setting the encryption algorithm executed by the 
encryption apparatus main body and counter part setting 
information required for setting information corresponding to 
the encryption algorithm for the fixed part and the set of the 
values of the fixed parts and used by the counter part based 
on the indication signal, 

wherein the encryption apparatus main body and the 
counter part perform the settings based on the cipher setting 
information and the counter part setting information. The 
encryption apparatus has a plurality of changeable encryption 
algorithms, and thus it can collectively manage the 
correspondences between the encryption algorithms and the 
conditions for plaintext to be detected even when the 
encryption algorithms used for cryptographic operations are 
changed frequently. Therefore, the correspondences can be 
kept easily. 

In addition, in the case where it is desired to provide 
labor savings by automation for taking a faster action, an 
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encryption apparatus for executing an encryption algorithm 
that receives plaintext to calculate ciphertext with a key, 
the encryption apparatus includes: 

a receiving part for receiving the plaintext; 

a counter part for separating a predetermined part from 
a bit string forming the plaintext into a fixed part and a 
remaining part into a variable part, counting the inputted 
plaintext having a value of the fixed part included in a set 
of values of the fixed parts formed of 1 or a plurality of the 
values of the fixed parts at every set of the values of the 
fixed parts, and storing it as a separate count; 

a detecting part for outputting a detection signal when 
at least one of the separate counts exceeds a predetermined 
number; and 

an encryption apparatus main body for updating the key 
used for encryption when a detection signal is outputted from 
the detecting part. The encryption apparatus is used as a VPN 
(virtual private network) apparatus to allow accurate updates 
of keys at the time when decryption becomes easy more than 
updates of keys for given periods of time. Therefore, the 
difficulty of decryption can be enhanced, and cryptographic 
operations holding traffic can be conducted. 

Moreover, in the case where the purpose is to encrypt 
and store data, a ciphertext storing apparatus for executing 
an encryption algorithm that receives plaintext to calculate 
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ciphertext with a key, and storing the ciphertext, the 
ciphertext storing apparatus includes: 

a receiving part for receiving the plaintext; 

a counter part for separating a predetermined part from 
a bit string forming the plaintext into a fixed part and a 
remaining part into a variable part, counting the inputted 
plaintext having a value of the fixed part included in a set 
of values of the fixed parts at every set of the values of the 
fixed parts formed of 1 or a plurality of the values of the 
fixed parts, and storing it as a separate count; 

a detecting part for outputting a detection signal when 
at least one of the separate counts exceeds a predetermined 
number; 

a ciphertext storing part allowed to store ciphertext; 

and 

a ciphertext storing apparatus main body for updating 
the key used for encryption when a detection signal is outputted 
from the detecting part, and for storing partial plaintext 
being a part of the plaintext, the ciphertext, and key reference 
information allowing reference of the key having been used for 
encryption in the ciphertext storing part. For example, the 
ciphertext storing apparatus is used as a database management 
server to allow high-speed search in which ciphertext is 
narrowed down by utilizing a part of plaintext in searching 
ciphertext and the narrowed-down ciphertext is decrypted to 
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continue the search. In addition to this^ the difficulty of 
decryption is not reduced because plaintext required for 
facilitating decryption is not contained in a database. 

BRIEF DESCRIPTION OF THE DRAWINGS 
The teachings of the invention can be readily understood 

by considering the following detailed description in 

conjunction with the accompanying drawings, in which: 

Fig. 1 is a function configuration diagram illustrating 

the functions relating to claims 1 to 3 according to the 

invention; 

Fig. 2 is a function configuration diagram illustrating 
the functions relating to claims 4, 8 and 12 according to the 
invention; 

Fig. 3 is a function configuration diagram illustrating 
the functions relating to claims 5, 9 and 13 according to the 
invention; 

Fig. 4 is a function configuration diagram illustrating 
the functions relating to claims 6, 10 and 14 according to the 
invention; 

Fig. 5 is a function configuration diagram illustrating 
the functions relating to claims 1 , 11 and 15 according to the 
invention; 

Fig. 6 is a hardware configuration diagram in an 
embodiment according to the invention; 
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Fig. 7 is a function configuration diagram illustrating 
a particular plaintext detector in the embodiment; 

Fig. 8 is a network configuration diagram illustrating 
a network configuration suitable for using the embodiment; 

Fig. 9 is a flowchart illustrating an example of the 
operation of the embodiment; 

Fig. 10 is a flowchart illustrating an example of the 
operation of the particular plaintext detector of the 
embodiment; 

Fig. 11 is a function configuration diagram illustrating 
an encryption apparatus of another embodiment; 

Fig. 12 is a network configuration diagram illustrating 
a network configuration suitable for using the encryption 
apparatus of another embodiment; 

Fig. 13 is a flowchart illustrating an example of the 
operation of the encryption apparatus of another embodiment; 

Fig. 14 is a function configuration diagram illustrating 
an encryption/decryption apparatus of still another 
embodiment; 

Fig. 15 is a network configuration diagram illustrating 
a network configuration suitable for using the 
encryption/decryption apparatus of still another embodiment; 
and 

Fig. 16 is a diagram illustrating one example of 
plaintext to be encrypted and stored as ciphertext in a 
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ciphertext storing apparatus of yet another embodiment, a 
ciphertext storing part having the ciphertext stored, and the 
relationship between the plaintext and the ciphertext by 
encryption . 

DESCRIPTION OF THE PREFERRED EMBODIMENT 
Hereinafter, embodiments of the invention will be 
described . 

This filter apparatus FO is configured to detect that 
plaintext to facilitate decryption is inputted from the 
plaintext to be inputted into KASUMI, an encryption algorithm. 

Fig. 6 is a device configuration diagram illustrating 
the filter apparatus FO in the embodiment. As shown in Fig. 
6, this particular plaintext detector is a general purpose 
computer, for example, having a CPU 101, an internal memory 
102, an external storage 103 such as HDD, a communication 
interface 104 such as a modem for connecting to communication 
networks, a display 105, and an input unit 106 such as a mouse 
and a keyboard. 

In the embodiment, as shown in Fig. 7, a predetermined 
program is installed in the filter apparatus FO, and the CPU 
101 and peripheral devices are operated together based on the 
program, which allows the apparatus to function as a filter 
apparatus main body Fl and a particular plaintext detector DO. 

First, each part will briefly be described below. 



11 



The filter apparatus main body Fl has an input port Fll 
for receiving plaintext, an input buffer F12 for storing the 
inputted plaintext, a processing part F13 for processing the 
plaintext in the input buffer F12, an output buffer F14 for 
storing the plaintext to be outputted, and an output port F15 
for outputting the plaintext. 

The input port Fll is the port that receives a packet 
containing plaintext of TCP or UDP. 

The input buffer F12 stores the packet received by the 
input port Fll. 

The output buffer F14 stores the packet to be outputted 
as the result processed by the processing part F13. 

The output port F15 takes out the packet from the output 
buffer F14 to alter a part of the header part of the packet 
and outputs the packet to a network. 

The processing part F13 outputs plaintext to the 
particular plaintext detector DO, receives a detection signal 
for indicating the detection of particular plaintext and a 
process restart signal for instructing the restart of 
processes being suspended, outputs an acknowledgment signal 
for acknowledging the receipt of the detection signal, and 
transfers the packet in the input buffer F12 to the output 
buffer F14. 

The particular plaintext detector DO has a receiving part 
Dl, a counter part D2, and a detecting part D3 . 
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The receiving part Dl receives plaintext. 

The counter part D2 separates a predetermined part from 
a bit string forming the plaintext into a fixed part and the 
remaining part into a variable part, counts the inputted 
plaintext having a value of the fixed part included in a set 
of values of the fixed parts at every set of the values of the 
fixed parts formed of 1 or a plurality of the values of the 
fixed parts, and stores it as a separate count. 

The detecting part D3 outputs the detection signal when 
a count exceeds a predetermined value, but it is acceptable 
to output a non-detecting signal when a count not exceeds a 
predetermined value instead. 

Next, the essential part will be described in detail. 

The processing part F13 splits a payload part of the 
packet being plaintext into 64 bits, and sequentially inputs 
it into the particular plaintext detector DO. It inputs the 
entire plaintext contained in a certain packet into the 
particular plaintext detector DO, and transfers the packet to 
the output buffer F14 when it does not receive a detection 
signal . 

In addition, the receiving part Dl is configured to 
receive 64-bit plaintext in accordance with the specifications 
of KASUMI, a block encryption algorithm that receives and forms 
plaintext into blocks and receives the blocked plaintext. 
However, it can be changed in accordance with the 
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specifications of other encryption algorithms. 

The counter part D2 is configured to separate 17th to 
32nd bits of the plaintext into a fixed part and first to 16th 
bits and 33rd to 64th bits thereof into a variable part, to 
count the inputted plaintext having the value of the fixed part 
included in the set of the values of the fixed parts at every 
set of the values of the fixed parts formed of at least 1 or 
a plurality of the values of the fixed parts, and to store it 
as a separate count. However, the fixed part and the variable 
part are changeable, and the set of the values of the fixed 
parts can be set optionally. Furthermore, it has a reset 
function that resets the entire separate counts to zero when 
it receives a reset signal. 

In addition, the detecting part D3 outputs a detection 
signal when at least one of the separate counts exceeds a 
predetermined number . 

Next, an example of the operation will be described below, 
in which the filter apparatus FO configured as the embodiment 
is connected to a network as shown in Fig. 8 in order to provide 
services utilizing the World-wide Web for a user Nl through 
the Internet. 

First, the user Nl sends a request packet making a request 
for a service to a Web server N4 through the Internet in a state 
that cryptographic operations are established. The request 
packet enters a gateway N2 to LAN, it is decrypted by an 
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encryption/decryption apparatus N7, and it is delivered to the 
Web server N4 through a router N3. 

The Web server N4 inquires of an application server N5 
and a database server N6 for information, and then creates a 
response packet to reply the request packet . 

The response packet has a header part containing an 
address that indicates the computer of the user Nl and a payload 
part containing plaintext that indicates the contents of the 
response . 

The response packet is first delivered to the router N3 
based on lower routing information such as an Ethernet. 

The router N3 is set beforehand to route the entire 
packets that are created in the Web server N4 in the LAN and 
sent to the Internet to the filter apparatus FO, and thus the 
response packet is delivered to the filter apparatus FO . 

Hereinafter, the operation of the filter apparatus FO 
will be described with reference to a flowchart shown in Fig. 
9 and a flowchart shown in Fig. 10 illustrating the operation 
of the particular plaintext detector DO. 

The input port Fll receives a packet delivered to the 
filter apparatus FO (Sla) , and the input buffer F12 stores the 
packet in order of arrival (S2a) . Subsequently, the 
processing part F13 splits the payload part of the packet being 
plaintext into 64 bits, and inputs it into the particular 
plaintext detector. At this time, when the payload part falls 
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short of 64 bits, it can be changed in accordance with the form 
of utilizing KASUMI, such as the payload part of a logically 
subsequent packet in the buffer is pushed up for use, and 
padding is filled {S3a) . 

The particular plaintext detector DO determines whether 
to detect particular plaintext (S4a) . More specifically, the 
receiving part Dl receives plaintext (Sib) , the counter part 
D2 searches a set of the values of the fixed parts including 
the value of the fixed part for 17th to 32nd bits of the 
plaintext {S2b) , and adds 1 to the corresponding separate count 
{S3b) . 

Subsequently, the detecting part D3 determines by 
comparison whether the added separate count exceeds a 
threshold value that is the minimum number of plaintext 
required to facilitate decryption, 2"^^, in this case (S4b) . 
The process of the particular plaintext detector DO is finished 
when it does not exceed the threshold vale, whereas the process 
is finished after a detection signal is outputted when it 
exceeds the threshold value (S5b) . 

When the process is returned to the filter apparatus main 
body Fl, the filter apparatus main body Fl checks whether the 
particular plaintext detector DO receives the outputted 
detection signal (S5a) . 

When the processing part F13 does not receive the 
detection signal, it checks whether there is a packet that has 
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finished processing the entire payload part (S6a) . When there 
is the packet, it is transferred to the output buffer F14 . When 
there is no packet, new plaintext is inputted into the 
particular plaintext detector. 

The output buffer F14 stores the packet (S7a) , and the 
output port F15 sends the packet to the router (S8a) . 

When the processing part F13 has received the detection 
signal, the processing part F13 outputs an acknowledgment 
signal to the encryption/decryption apparatus N7 (S9a) , and 
waits until it receives a process restart signal (SlOa) . 

At this time, the encryption/decryption apparatus N7 
that has received the acknowledgment signal updates the key 
used in the cryptographic operations, or it takes an action 
to end the operations. When the action is completed, it 
outputs a process restart signal to the filter apparatus main 
body FO. 

When the processing part F13 receives the process restart 
signal, it sends a reset signal to the particular plaintext 
detector DO (SlOa) . When there is a packet that has finished 
processing the entire payload part, it transfers the packet 
to the output buffer F14. 

The output buffer F14 stores the packet (S6a) , and the 
output port F15 sends the packet to the router (S7a) . 

The router N3 having received the packet from the filter 
apparatus FO sends it to the encryption/decryption apparatus 
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N7, and the encryption/decryption apparatus N7 encrypts the 
payload part of the packet and sends it to the gateway N2 • 

The gateway N2 confirms the address of the user Nl 
described in the header part of the packet, and sends it to 
the Internet when the packet is proper. 

The filter apparatus FO provided with this particular 
plaintext detector DO receives data, which has been outputted 
from an information processor such as the Web server N4, the 
application server N5 and the database server N6, as plaintext 
at the step before it is encrypted by the encryption/decryption 
apparatus N7, and then outputs the plaintext. Thus, the 
information processor gives a response that the user Nl can 
expect, or outputs data that can expect statistical bias- 
Therefore, the filter apparatus detects the event that ciphers 
can be decrypted easily, and temporarily suspends the output 
of plaintext to allow an action of changing the keys even though 
it can be considered that the user tries decryption by inputting 
plaintext. The difficulty in decrypting ciphers can be 
enhanced with performing cryptographic operations more 
efficiently than an action of changing the keys for given 
periods of time, for example. 

In addition, the invention is not limited to the 
embodiment . 

For example, as an apparatus for enhancing the difficulty 
in decrypting ciphertext with the use of the particular 
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plaintext detector, an embodiment can be considered as an 
encryption apparatus shown in Fig. 11. 

More specifically, an encryption apparatus El is 
configured to further have an encryption part E14 capable of 
executing a plurality of encryption algorithms for encryption; 
an indication signal receiving part CI for receiving an 
indication signal to indicate an encryption algorithm for new 
use; and a setting part C2 for outputting information 
describing an encryption algorithm performed by the encryption 
part E14 and a fixed part used by a counter part D2 of a 
particular plaintext detector DO. 

Hereinafter, each part will be described when configured 
as the encryption apparatus El. 

An input port Ell, an input buffer E12, an output buffer 
E15, and an output port E16 included in an encryption apparatus 
main body ElO are the same as the input port Fll, the input 
buffer F12, the output buffer F14, and the output port E15 
included in the filter apparatus main body Fl, respectively, 
but they are formed to output ciphertext. 

A processing part E13 can output plaintext to the 
particular plaintext detector DO, receive a detection signal 
for indicating the detection of particular plaintext and a 
process restart signal for instructing the restart of a 
suspended process, output an acknowledgment signal for 
acknowledging the receipt of the detection signal, and 
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transfer a packet in the input buffer E12 to the encryption 
part E14. 

More specifically, it splits a payload part of a packet 
being plaintext into 64 bits, and sequentially inputs it into 
the particular plaintext detector DO, It inputs the entire 
plaintext contained in a certain packet into the particular 
plaintext detector DO, and it transfers the packet to the 
encryption part E14 when it does not receive a detection signal . 

The encryption part E14 executes encryption algorithms, 
receives plaintext, and outputs ciphertext. It can receive 
an acknowledgment signal, and output a process restart signal. 
Moreover, it can execute procedures relating to cryptographic 
operations such as generating a packet to perform a procedure 
to clear cryptographic operations, in which encryption 
algorithms are changed by receiving cipher setting 
information . 

A counter part D2a is configured in which the counter 
part D2 of the filter apparatus FO can set the fixed part and 
a set of the values of the fixed parts based on counter part 
setting information . 

The indication signal receiving part CI receives an 
indication signal. The setting part C2 outputs cipher setting 
information for setting an encryption algorithm for new use 
in the encryption part E14 and counter part setting information 
for setting parameters about the fixed parts and a set of the 
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values of the fixed parts unique to encryption algorithms set 
in the counter part D2a based on the indication signal. 

An example of the operation will be described below when 
the encryption apparatus El configured as the embodiment is 
connected to a network shown in Fig, 12 in order to provide 
services utilizing the World-wide Web for a user through the 
Internet - 

First, when the user Nl sends an indication packet making 
a request for a change to a certain encryption algorithm in 
a state that cryptographic operations are established, the 
indication packet enters the gateway N2 to LAN through the 
Internet, and it is delivered to a decryption apparatus N8 by 
a router N3. 

The decryption apparatus N8 decrypts the encrypted 
indication packet, and again returns it to the router N3. The 
router N3 sends the indication packet to the encryption 
apparatus El based on information set beforehand. 

Hereinafter, the operation of the encryption apparatus 
El will be described with reference to a flowchart shown in 
Fig. 13. 

First, an indication packet is delivered to the 
encryption apparatus El, and the indication signal receiving 
part CI receives it as an indication signal (Sic) . 

Subsequently, the setting part C2 determines whether the 
encryption algorithm indicated by the indication signal is 
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usable (S2c) , and it outputs cipher setting information when 
the algorithm is usable (S3c) . The encryption part E14 
performs setting so as to execute the indicated encryption 
algorithm (S4c) . When the algorithm is unusable, the 
encryption part E14 outputs an error signal (S8c) . 

Then, the setting part C2 determines whether settings 
on a fixed part and a set of the values of the fixed parts 
corresponding to the indicated encryption algorithm are usable 
{S5c) , and it outputs counter part setting information when 
it is usable {S6c) - The counter part D2a sets the fixed part 
and the set of the values of the fixed parts (S7c) . 

When this is done, the encryption apparatus El can 
collectively manage encryption algorithms and information 
indicating the fixed parts unique to the encryption algorithms, 
and can keep the correspondences all the time. Therefore, 
there is no need to perform additional settings except to 
indicate encryption algorithms in changing encryption 
algorithms, which is particularly convenient when a service 
provider, for example, needs to change encryption algorithms 
frequently in accordance with users. 

Moreover, an embodiment can be considered as an 
encryption/decryption apparatus E2, in which a decryption part 
E23 is provided in the encryption apparatus El as shown in Fig. 
14. Based on packet type information contained in the header 
part of a packet in an input buffer, the decryption part E23 
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outputs the packet as it is when the packet is plaintext, 
whereas it decrypts a packet and outputs plaintext when the 
packet is ciphertext. Based on the packet type information, 
an encryption part E25 encrypts a packet and outputs ciphertext 
when the packet is plaintext, whereas it outputs a packet as 
it is when the packet is ciphertext. 

The encryption/decryption apparatus E2 thus configured 
is connected to a network for use as shown in Fig. 15, for 
example, which allows the detection of particular plaintext 
contained in plaintext used by a person at the other end of 
communications. For example, it is convenient to enhance the 
difficulty in decrypting ciphertext by using common key 
cryptographic algorithms when a plurality of data senders uses 
the same keys to execute cryptographic operations. 

In addition, as another embodiment of the encryption 
apparatus, an encryption apparatus is configured to 
automatically update keys, not to raise an alert to an operator 
to take an action when particular plaintext is detected- The 
encryption apparatus can provide not only labor savings and 
prompt action but also efficient communications compared with 
updating keys for given periods of time, and can enhance the 
difficulty of decryption. 

Other than these embodiments, it can also be considered 
to use the particular plaintext detector in order to store 
ciphertext . 
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For example, ciphertext needs to be decrypted for 
searching for necessary information in stored ciphertext. 
Then, high-speed search can be done when ciphertext is stored 
along with a part of plaintext useful for search, but a 
code-breaker can use a pair of plaintext and ciphertext, which 
reduces the difficulty of decryption. 

However, when there is no plaintext to facilitate 
decryption, the difficulty of decryption is not reduced even 
though ciphertext is stored along with a part of plaintext. 

Thus, in the case of configuring a ciphertext storing 
apparatus, it includes an encryption apparatus, in which a part 
of plaintext useful for search, ciphertext, and key reference 
information for allowing reference of keys stored in a 
different file are stored in the same table or file, for example, 
which allows efficient search without reducing the difficulty 
of decryption. 

Fig. 16 shows an example that plaintext is stored in a 
table of a ciphertext storing part in a ciphertext storing 
apparatus thus configured, and the correspondences between 
ciphertext and plaintext. 

Furthermore, a plurality of small fixed parts is 
estimated even when the particular plaintext detector is used 
along with an encryption algorithm that is not determined which 
plaintext facilitates its decryption. In the case where 
separate counts have a distribution greatly different from a 
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normal distribution, the particular plaintext detector 
assumes that decryption with plaintext is tried and sends a 
detection signal, which allows the further increased 
difficulty of decryption, 
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